Abstract: The present application describes a method and apparatus for managing a service in a service layer. In particular, a method describes a computer readable storage medium including instructions for managing a service in a service layer where the instructions are executed by a processor. The executed instructions cause the processor to receive a request to manage, via a service enabler function of the service layer, a change of state of the service including adding, removing, activating, or deactivating the service. The request may include a service description. The executed instructions also cause the processor to evaluate, via the service enabler function, the service description comprising identifiers of one or more services to manage. The executed instructions further cause the processor to identify one or more service capabilities in the service layer to assist in managing the one or more services identified in the service description.

Abstract: A food preparation appliance and associated components and methods. The food preparation appliance is configured to support transmission of operations updates and other data to/from a local or remote computer. In some embodiments, the food preparation appliance provides a virtual data bus for transmission of the updates or data. The virtual data bus may be bridged to a physical data bus of the food preparation appliance. The food preparation appliance can be configured to receive operations updates regardless of an operational mode of the food preparation appliance.

Abstract: Disclosed herein are an apparatus and method for a multi-cloud service platform. The apparatus includes one or more processors and executable memory for storing at least one program executed by the one or more processors. The at least one program may receive a service request from a user client device, generate a multi-cloud infrastructure service using multiple clouds in response to the service request, make the multiple clouds interoperate with mufti-cloud infrastructure in order to provide the multi-cloud infrastructure service, and generate a multi-cloud application runtime environment corresponding to the multi-cloud infrastructure service.

Abstract: A method includes receiving a request to perform a shuffle operation on a data stream; receiving at least a portion of the data stream including a plurality of records, each including a key; storing each of the plurality of records in a persistent storage location assigned to a key range corresponding to keys included in the plurality of records; receiving a request from a consumer for a subset of the plurality of records including a range of keys; and upon receiving the request from the consumer, providing the subset of the plurality of records including the range of keys from the one or more persistent storage locations.

Abstract: Example caching systems and methods are described. In one implementation, a method identifies multiple files used to process a query and distributes each of the multiple files to a particular execution node to execute the query. Each execution node determines whether the distributed file is stored in the execution node's cache. If the execution node determines that the file is stored in the cache, it processes the query using the cached file. If the file is not stored in the cache, the execution node retrieves the file from a remote storage device, stores the file in the execution node's cache, and processes the query using the file.

Abstract: Described is a system for intelligent and reversible data masking of computing environment information shared with an external system. The system may leverage a secure masking agent that acts as an intermediary between a computing system (or environment) and an analytics component. The masking agent may provide real-time reversible data masking that ensures that sensitive information is not exposed outside of a secure (e.g. on-premises) environment, while at the same time ensuring the analytics component receives sufficient contextual information to perform a detailed analysis with the shared information. For example, the system may identify and mask identifying information of a particular server or host, while still retaining certain contextual information such as a network topology.

Abstract: A system is disclosed. The system may include a first device including a first processor, and a second device including a second processor, a memory, a first storage, and a second storage. The first storage may operate at a first speed, and the second storage may operate at a second speed that is slower than the first speed. The second device may be remote relative to the first device. The first device may load a metadata from a memory address in the memory of the second device. The first device may also access a data from the second device based at least in part on the metadata in the memory of the second device.

Abstract: Techniques for network-management-card-assisted shutdown of hyperconverged infrastructure (HCI) are disclosed. A network management card (NMC) includes: a network interface communicatively coupled with an HCI environment; one or more processors; and one or more non-transitory computer-readable media storing instructions. The instructions, when executed by the one or more processors, cause the one or more processors to perform operations including: receiving, from the HCI environment via the network interface, a selection of a set of shutdown instructions from multiple sets of shutdown instructions supported by the NMC, the multiple sets of shutdown instructions being configured to support shutdown processes for at least two different HCI platforms; detecting that the HCI environment is performing a shutdown; and finalizing the shutdown at least by executing the set of shutdown instructions.

Abstract: A data management system comprises: a storage appliance configured to store a snapshot of a virtual machine; and one or more processors in communication with the storage appliance. The one or more processors are configured to perform operations including: identifying a plurality of shards of the virtual machine; requesting a snapshot of each of the plurality of shards; receiving the shards asynchronously; ordering the received snapshot shards sequentially into a results queue; and storing a single snapshot of the virtual machine based on the ordered snapshot shards. Operations may further include maintaining a flow control queue that limits the number of snapshot shards requested.

Abstract: Systems and methods for providing a pattern-based cloud architecture facilitating deployment of pattern-based cloud applications are presented. The pattern-based cloud architecture may comprise a base layer having at least a primary base, with each base supporting one or more landing zones of a landing zone layer. Each landing zone further supports one or more application patterns for cloud applications in an application pattern layer. Implementing the base layer includes receiving a set of base services and operating parameters defining a primary base and executing scripts to configure the primary base for providing the set of base services and operating parameters to any landing zones associated with such primary base. A bootstrap isolation entity may be established prior to and for the purpose of executing the scripts to implement the primary base. Additional bases may be implemented in the base layer by executing additional scripts within the primary base layer.

Abstract: System and method for creating and managing trusted execution environments (TEEs) using different underlying hardware TEE mechanisms use a virtual secure enclave device which runs in a virtualized environment in a computer system. The device enables an enclave command transmitted to the virtual secure enclave device to be retrieved and parsed to extract an enclave operation to be executed. A TEE backend module is used to interact with a particular hardware TEE mechanism among those available in the computer system. The module ensures the enclave operation for the software process is executed by the particular hardware TEE mechanism, or the TEE scheme based on a particular hardware TEE mechanism.

Abstract: Disclosed herein are system, method, and computer program product embodiments for a method of cloud infrastructure optimization. The method identifies an existing infrastructure configuration deployed in a cloud environment and generates a plurality of proposal configurations, each of the plurality of proposal configurations having executable code configured to adjust the existing infrastructure configuration for at least one variable. The method selects a proposal configuration from the plurality of proposal configurations based on the at least one variable adjusted for in the existing infrastructure configuration, and the selected proposal configuration is deployed in the cloud environment. The method then analyzes the selected proposal configuration for a level of adjustment for the at least one variable. The method trains a model engine with existing and new training data.

Abstract: A control system (10) includes, for each type of Virtual Network Function (VNF), a VNF compatibility condition indicating a condition of allocation of resources by which the VNF corresponding to the type is allowed to coexist with other VNFs in an identical computer, and resource usage information indicating resources in use by the VNF in the computer and unused resources. The control system (10) includes a VNF deploy control unit (14) referencing, in a case of receiving an instruction to additionally install a VNF, the type of the VNF to be additionally installed, the VNF compatibility condition, and the resource usage information to determine, from among the unused resources, resources allocated to the VNF to be additionally installed, and a resource allocation processing unit allocating the determined resources to the VNF to be additionally installed.

Abstract: The disclosed approach works without the individualized credentials of failed machines when setting up recovery VMs in a cloud computing environment. Each recovery VMs is customized to properly correspond to the system state of its failed counterpart. An illustrative data storage management system recovers backup data and system states collected from the counterpart computing devices, custom-configures recovery VMs in the cloud computing environment, and injects the desired drivers into each recovery VM during an enhanced bare-metal restore process. The enhanced bare-metal restore process works without the failed computer's credentials. The system also restores the backed up data to recovery volumes attached to the recovery VMs. The present approach is both scalable and secure.

Abstract: An electronic device includes a first display driver configured to control a first display, a second display driver configured to control a second display, and a processor. The processor is configured to: if screen switching is detected while displaying first image data on the first display using a first pixel value, produce a first calibration value based on the difference between the first pixel value for display on the first display and a second pixel value for display on the second display; apply the first calibration value to the second pixel value so as to produce a third pixel value corresponding to the first pixel value; and control the second display driver so as to display the first image data on the second display using the third pixel value. Various other embodiments may be provided.

Abstract: A micro kernel scheduling method and apparatus are disclosed in embodiments of this disclosure. The method is applied to a software platform and includes: receiving a scheduling instruction for a current micro kernel; and switching the current micro kernel to a target micro kernel. In some embodiments, a micro kernel is switched directly according to a scheduling instruction, and this is completed without any thread of the software platform, which solves the problems in the conventional system of high micro kernel switching cost and poor real-time performance caused by one-to-one correspondence between micro kernels and threads of the software platform.

Abstract: An integrated circuit includes sensing circuitry and processing circuitry. The processing circuitry processes received sensor-session requests and received sensor-service requests. Processing a received sensor-service request includes determining a type of the received sensor-service request. In response to determining the received sensor-service request is of a first type, results information is generated in response to the received sensor-service request of the first type based on sensor data generated by the sensing circuitry. In response to determining the received sensor-service request is of a second type, remote-server processing based on the received sensor-service request of the second type is initiated, and a response to the received sensor-service request of the second type is generated based on a received response to the initiated remote-server processing.

Abstract: A system according to an embodiment of the present invention includes at least two virtual machines running on a hardware platform using either a hosted or a bare metal hypervisor. The virtual machines may communicate with an agent-server resident in the host operating system or in one of the virtual machines to switch control of the hardware component, such as graphics hardware, from one virtual machine to another.

Abstract: An electronic apparatus adapted for a container and a software updating method for a running container system are provided. A first software installation package is installed in a host system. The first software installation package includes an executable component used by the host system and a second software installation package. The executable component provides information required by an installation operation of the first software installation package. The second software installation package is made accessible to a container system by the host system based on the executable component. The second software installation package is installed in the container system to update an application in the container system.

Abstract: Methods and systems are provided for improving user authentication and access control by a network file system service in a multi-tenant public cloud environment by receiving a request for a connection to a file system from a file system client (client), sending an identification request for identification authentication of the client to a control system, receiving a response from the control system, establishing the connection to the file system upon determining that the connection to the file system is allowed based on cloud tenant information associated with the client, receiving an attempt to access the file system from the client by a sub-user, authenticating the sub-user based on the cloud tenant information, issuing a security token including a globally unique sub-user identifier of the sub-user, and using the security token to determine access rights of the sub-user to the file system for a subsequent request.

Abstract: A system and method for detecting lateral movement based on an exposed cryptographic network protocol (CNP) key in a cloud computing environment. The method includes: inspecting a first workload for a private CNP key, the private CNP key associated with a hash of a public CNP key; detecting in a security database a representation of the public CNP key; generating a lateral movement path, the lateral movement path including an identifier of a second workload, the second workload represented by a representation connected to the representation of the public CNP key.

Abstract: A set of virtual machines is deployed on a hypervisor. At each virtual machine, one or more local scans is performed to generate a set of computing resource consumption data. In response to receiving a set of hypervisor resource consumption data, a stability factor is generated. Based on the set of resource consumption data, the set of hypervisor resource consumption data, and the stability factor, a determination is made that a default consumption metric exceeds a threshold. In response to the determination, a custom consumption metric is generated, based on at least the set of computing resource consumption data. A user is notified of the custom consumption metric.

Abstract: Illustrative systems and methods enable a virtual machine (“VM”) to be powered up at any hypervisor regardless of hypervisor type, based on live-mounting VM data that was originally backed up into a hypervisor-independent format by a block-level backup operation. Afterwards, the backed up VM executes anywhere anytime without needing to find a hypervisor that is the same as or compatible with the original source VM's hypervisor. The backed up VM payload data is rendered portable to any virtualized platform. Thus, a VM can be powered up at one or more test stations, data center or cloud recovery environments, and/or backup appliances, without the prior-art limitations of finding a same/compatible hypervisor for accessing and using backed up VM data. An illustrative media agent maintains cache storage that acts as a way station for data blocks retrieved from an original backup copy, and stores data blocks written by the live-mounted VM.

Abstract: Examples described herein include automated discovery of hardware resources of nodes of a container cluster to facilitate pod scheduling. According to an example, discovery pods are launched on respective nodes of the container cluster. The discovery pods are privileged pods with an ability to query respective operating systems of respective nodes regarding hardware associated with the respective nodes. Information regarding local block devices associated with the respective nodes are discovered by the discovery pods running thereon. Scheduling of storage system pods on nodes of the container cluster that satisfy storage characteristics specified by respective pod requests are facilitated by creating a raw block persistent volume (PV) for each of the discovered local block devices or a subset thereof.

Abstract: Systems and methods for making a cross-site storage solution resilient towards mediator unavailability are provided. According to one embodiment, a stretched storage system is operable to bring a mediator associated with a primary and secondary distributed storage system back into the role of an arbitrator for peered consistency groups (CGs). A mediator reseed status indicator is maintained for multiple CGs to identify when the mediator's status information for a CG is stale. When the mediator becomes available and a local CG is identified as the subject of a mediator reseed process, the master node of the primary that hosts a master copy of a dataset for the local CG performs the reseed process, including: (i) causing relationship status information for the local CG to be updated on the mediator to the current state maintained by the primary; and (ii) resetting the mediator reseed status indicator.

Abstract: Techniques for applying context-based security over interfaces in O-RAN environments in mobile networks are disclosed. In some embodiments, a system/process/computer program product for applying context-based security over interfaces in O-RAN environments in mobile networks includes monitoring network traffic on a mobile network at a security platform to identify a GTP-U tunnel session setup message associated with a new session; extracting a plurality of parameters from the GTP-U tunnel session setup message and from F1AP traffic to extract contextual information at the security platform; and enforcing a security policy at the security platform on the new session based on one or more of the plurality of parameters to apply context-based security to the network traffic transported between O-RAN Distributed Unit (O-DU) and O-RAN Centralized Unit Control Plane (O-CU-CP) nodes in an O-RAN environment in the mobile network.

Abstract: The invention relates to an apparatus for virtualized registers. The apparatus includes register space, group selectors, and a block selector. The register space is divided into physical blocks, each of which includes register groups, and each register group contains registers. Each group selector is coupled to a portion of the register groups in a corresponding physical block, and is arranged operably to enable one of the portion of the register groups in the corresponding physical block in accordance with a first control signal corresponding to a virtual device, or a function performed by the virtual device. The block selector, coupled to the group selectors, is arranged operably to enable one of the group selectors in accordance with a second control signal corresponding to a virtual machine instruction. The virtual machine instruction is translated into an operation of the virtual device.

Abstract: A technique includes providing at least one service blueprint to orchestrate application programming interfaces to manage the lifecycle of at least one cloud service.

Abstract: Cloud services intelligently provision new VMs for a VM scale set when the original label that included the OS or other software images used to provision existing VMs of the VM scale set is no longer available or has been changed. Metadata of the existing VMs are analyzed to identify an OS image or other software image used to provision the existing VMs. The metadata also reveals updates that are running on the new VMs. These updates include software that was not part of the original label used to provision the existing VMs and are used to find the second label in a label database. The second labels include the OS or software of the existing VMs—or a later version thereof—and some portion of the updates. A VM-provisioning service uses the second label to provision the new VM.

Abstract: A system includes an application instance or application environment instance and a first cloud service of a trusted cloud provider. The first cloud service is configured to receive an encrypted disk image and to launch the application instance or application environment instance. The system also includes a second cloud service of a first alternate cloud provider, which is configured to launch a first attestation service instance from an attestation disk image that includes a secret and to provide the secret to the application instance or application environment instance.

Abstract: A data processing method includes receiving, by a source physical machine, a first data packet including first data, and a destination address of the first data is a first virtual machine, generating a second data packet including the first data and an identifier of a second virtual machine, where the second virtual machine is the first virtual machine after being live migrated from the source physical machine to a destination physical machine, and the identifier of the second virtual machine identifies the second virtual machine on the destination physical machine, and sending, by the source physical machine, the second data packet to the destination physical machine.

Abstract: Some embodiments provide a method for providing a resource to a particular virtual private cloud that is deployed in a set of datacenters that host multiple virtual private clouds. At a resource issuer, the method receives a resource request from a particular machine deployed in the particular virtual private cloud, the resource request including a first set of cloud-specific data. The method obtains a cloud identifier for the particular machine from a registry service of the particular virtual private cloud that interacts with a datacenter-set cloud service that deploys machines in the datacenter set for different virtual private clouds. The method uses the obtained cloud identifier to obtain a second set of cloud-specific data for the particular machine from the datacenter-set cloud service. Upon determining that the first and second sets of cloud-specific data match, the method authenticates the particular machine and issues the resource for the particular machine.

Abstract: A memory management method is provided, which includes assigning separate virtual addresses to processes in user space, include to a file system configured to read/write to persistent storage. Virtual memory objects (VMOs) are created in user space that are backed by a user space pager service. Such objects including pages representing a file associated with information maintained in persistent storage. A pager manages reading/writing to persistent storage. The pager populates pages for a given VMO using data retrieved from persistent storage. Upon populating the pages, a state of the VMO is set to a clean state. Upon writing to the pages, the state of the VMO is set to a dirty state. Upon initiating writing back to persistent storage, the state of the VMO is set to an awaiting clean state. Upon ending the writing back, the state of the VMO is set to clean.

Abstract: The disclosed subject matter relates to managing a vehicular micro cloud. A method may include determining join/leave protocols for a vehicular micro cloud and transmitting the join/leave protocols to a local vehicle in a vicinity of the vehicular micro cloud prior to the local vehicle joining the vehicular micro cloud. The join/leave protocols can define at least: 1) a procedure for the local vehicle to join the vehicular micro cloud and contribute computing resources to a collaborative micro cloud task, and 2) a protocol for handing an incomplete task when the local vehicle leaves the vehicular micro cloud.

Abstract: A computer-implemented method and a computer system for improving cached workload management. A host, which is in a system comprising the host and a storage system, obtains information about classes of applications accessing the storage system. The host determines input/output queues dedicated to respective ones of the classes. The storage system creates, in the storage system, cache partitions dedicated to the respective ones of the classes, based on information about classes. The host creates the input/output queues and sets bit flags for respective ones of the input/output queues. The host pumps inputs/outputs coming from the respective ones of the classes to the respective ones of the input/output queues. The storage system directs the input/output queues to respective ones of the cache partitions.

Abstract: A system for isolating requests that comprises, a shared command queue, a first virtual computational resource and a second virtual computational resources. The first virtual computational resources comprises a policy engine configured to access policies comprising criteria for assigning commands corresponding to requests from tenants to compartments, determine, according to the policies, compartments to which to assign the commands corresponding to the requests, produce the commands corresponding to the requests, and queue the commands in the shared command queue, each command comprising compartment assignment information.

Abstract: Virtual computer systems (virtual machines) have become increasingly common with the evolution of virtualization technology, cloud computing, etc. However, as a virtual machine and its associated guest operating system seek to execute and/or access a page of memory through synchronous processes execution of the virtual processor associated with the virtual processing is blocked until the page of memory is locked and available. Accordingly, time is wasted on calls waiting for physical page availability thereby reducing utilization of the host machine and virtual machine respectively. To address this an asynchronous virtual machine environment is established allowing the virtual machine or physical machine to handle additional operations whilst waiting for physical page availability.

Abstract: Example methods are provided to identify unused memory regions in pages that are allocated for storing executable code. One or more of the unused memory regions are usable as a secure location to store confidential information shared between a hypervisor on the host and a guest (such as a guest virtual computing instance) that runs on the host. The one or more unused memory regions may also be used to store executable code (such as valid executable code of antivirus software or other security program) that has been prevented/delayed in its execution by malicious code that has occupied the pages, thereby providing the executable code with sufficient memory resources to enable the executable code to at least partially complete execution.

Abstract: A method includes obtaining an operator parameter and a processor parameter corresponding to an operator operation, creating N scheduling policies based on the operator parameter and the processor parameter, where the N scheduling policies are classified into M scheduling policy subsets, and each scheduling policy subset includes at least one scheduling policy, filtering the M scheduling policy subsets based on the operator parameter and the processor parameter, to obtain K feasible scheduling policies, where the K feasible scheduling policies are optimal scheduling policies of K feasible scheduling subsets in the M scheduling policy subsets, inputting the operator parameter and the K feasible scheduling policies into a cost model to obtain K operator operation costs, wherein N, M, and K are natural numbers, and determining, based on a target requirement and the K operator operation costs, an optimal scheduling policy used for the operator operation.

Abstract: Novel tools and techniques are provided for implementing network experience shifting, and, in particular embodiments, using either a roaming or portable hypervisor associated with a user or a local hypervisor unassociated with the user. In some embodiments, a network node in a first network might receive, via a first network access device in a second network, a request from a user device to establish roaming network access, and might authenticate a user associated with the user device, the user being unassociated with the first network access device. Based on a determination that the user is authorized to access data, content, profiles, and/or software applications that are accessible via a second network access device, the network node might establish a secure private connection through a hypervisor or container communicatively coupled to the first network access device to provide the user with access to her data, content, profiles, and/or software applications.

Abstract: A system for providing computer implemented services using information handling systems includes persistent storage and a system control processor manager. The system control processor manager instantiates composed information handling systems using the information handling systems; monitors, using system control processors of the composed information handling systems, operation of the composed information handling systems to obtain operation information; makes a determination, based on the operation information, that the computing implemented services provided by the composed information handling systems are substandard; and in response to the determination: manages operation of the composed information handling systems to provide standards compliant computer implemented services by modifying a composition of at least one of the composed information handling systems using a system control processor of the system control processors.

Abstract: A network-accessible service provides an enterprise with a view of identity and data activity in the enterprise's cloud accounts. The service enables distinct cloud provider management models to be normalized with centralized analytics and views across large numbers of cloud accounts. Based on identity and audit data received from a set of cloud deployments, and according to a cloud intelligence model, a set of permissions associated with each of a set of identities are determined. For each identity, and based on a set of identity chains extracted from the cloud intelligence model, a set of identity account action paths (IAAPs) are then determined. An IAAP defines how the identity obtains an ability to perform a given action in a given account. Using the identity account action paths together with context information, one or more roles, groups and accounts in the enterprise that are propagating permissions within the public cloud environment are then identified.

Abstract: Embodiments described herein are directed to configuring managed virtual machines. For instance, a management service (e.g., a mobile device manager) may provide configuration settings to a parent virtual machine. Upon successful application of the configuration settings, the parent virtual machine notifies a configuration service that it is in a steady state and provides the configuration settings to the configuration service. The configuration service notifies a cloud-based service (e.g., a virtual desktop service) that it is configured to instantiate virtual machines. The notification informs the cloud-based service that it is permitted to instantiate child virtual machines. Responsive to receiving the notification, the cloud-based service instantiates child virtual machine(s) as needed.

Abstract: A method and/or apparatus for creating and/or editing a machine pool with bring your own machine (BYOM) includes creating and/or editing a machine pool with a static list of machines. A user input machine list and an existing machine list are retrieved, and the user input machine list and existing machine list are compared to identify one or more changes between the user input machine list and existing machine list. Next, a new machine specification is created when the one or more changes between the user input machine list and existing machine list are identified. The one or more machines are then moved to the new machine specification.

Abstract: A method for protecting an OS disk of a computing device without block encrypting the OS disk. The method identifies one or more files that store configuration data associated with OS binaries executed on the computing device. The method encrypts the configuration data stored in the one or more files using an encryption key and seals the encryption key to a TPM of the computing device. The method then boots the computing device by attempting to unseal the encryption key by authenticating one or more of the OS binaries with the TPM. When authenticating the one or more of the OS binaries is successful, the method completes boot of the computing device by decrypting the configuration data using the encryption key. If authentication of the one or more of the OS binaries is not successful, however, the method aborts boot of the computing device.

Abstract: The present disclosure relates to computer-implemented methods, software, and systems for providing extension application mechanisms. Memory is allocated for a virtual environment to run in an address space of an application that is to be extended with extension logic in a secure manner. The virtual environment is configured for execution of commands related to an extension functionality of the application. A virtual processor for an execution of a command of the commands is initialized at the virtual environment. The virtual processor is operable to manage one or more guest operating systems (OS). A first guest OS is loaded at the allocated memory and application logic of the extension functionality is copied into the allocated memory. The virtual environment is started to execute the first guest OS and the application logic of the extension functionality in relation to associated data of the application in the allocated memory.

Abstract: Hardware transactions or other techniques, such as custom PCIe handling devices, are used to atomically move pages from one host's memory to another host's memory. The hosts are connected by one or two non-transparent bridges (NTBs), which make each host's memory and devices available to the other, while allowing each host to reboot independently.

Abstract: The technology disclosed herein enables the restoration of a database version across cloud environments. In a particular embodiment, a method provides receiving, in a second cloud environment from a first cloud environment, first metadata describing a first data version stored in the first cloud environment. The first data version includes first data items and the first metadata. After receiving the first metadata, the method provides receiving, in the second cloud environment, an instruction to restore the first data items to the second cloud environment. In response to the instruction, the method provides restoring the first data items to the second cloud environment using the first metadata.

Abstract: Some embodiments provide a method for scheduling networking threads associated with a data compute node (DCN) executing at a host computer. When a virtual networking device is instantiated for the DCN, the method assigns the virtual networking device to a particular non-uniform memory access (NUMA) node of multiple NUMA nodes associated with the DCN. Based on the assignment of the virtual networking device to the particular NUMA node, the method assigns networking threads associated with the DCN to the same particular NUMA node and provides information to the DCN regarding the particular NUMA node in order for the DCN to assign a thread associated with an application executing on the DCN to the same particular NUMA node.

Abstract: Systems and methods for supporting efficient virtualization in a lossless interconnection network. An exemplary method can provide, one or more switches, including at least a leaf switch, a plurality of host channel adapters, wherein each of the host channel adapters comprise at least one virtual function, at least one virtual switch, and at least one physical function, a plurality of hypervisors, and a plurality of virtual machines, wherein each of the plurality of virtual machines are associated with at least one virtual function. The method can arrange the plurality of host channel adapters with one or more of a virtual switch with prepopulated local identifiers (LIDs) architecture or a virtual switch with dynamic LID assignment architecture. The method can assign each virtual switch with a LID. The method can calculate one or more linear forwarding tables based at least upon the LIDs assigned to each of the virtual switches.